$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: VFCZoKaqwOhtxsrYdP1uCjyRfIQYkakPra6VSlcM8oU= Subject key identifier: 38:21:7C:DB:16:81:D1:7D:BA:A5:45:5F:A9:FD:88:F0:7F:71:2C:76 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2BAA Signing time: Fri 08 Aug 2025 15:36:20 +0000 Manifest this update: Fri 08 Aug 2025 15:36:20 +0000 Manifest next update: Fri 15 Aug 2025 15:36:20 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: Qdy+ZzSvqAjeYnOPpLUIQkRZq6EMNwVDjJ44bXLNdQE=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11347 (0x2c53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Aug 8 15:36:20 2025 GMT Not After : Aug 15 15:36:20 2025 GMT Subject: CN=68961974-60c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c8:6b:5f:73:89:da:63:6e:43:21:27:df:79: 88:8a:ea:ec:72:27:e3:18:2c:d2:7b:0b:32:7f:d1: 35:0e:2d:1f:f0:7b:02:14:43:c9:67:22:95:57:86: 32:1c:d0:e3:6b:4e:d6:97:3f:a6:c6:b8:d1:41:07: 22:b5:27:f9:d0:22:58:9b:e4:eb:a5:fd:68:61:0f: 97:ce:c9:5c:1c:72:d0:73:b0:d5:0c:58:67:e2:4e: 93:70:5d:e2:b3:d2:bc:ee:77:9c:c8:b5:f0:d2:ee: e8:34:b2:ed:7d:2e:62:80:f5:a5:6d:76:88:14:c4: a6:4b:02:36:b1:03:34:b7:8d:8c:bd:57:ce:d8:3f: 21:fd:a1:da:e4:30:07:5f:38:f3:3c:87:4a:c5:7f: e6:db:8f:b1:a0:ad:b1:0d:8b:44:76:0b:44:30:a0: 02:51:36:3f:35:71:d9:1b:91:ed:b8:b3:17:dc:3c: d3:01:c2:2e:67:8d:53:72:bc:11:50:9b:49:17:6e: be:3b:54:15:12:48:53:2d:b6:ba:05:c5:fe:99:71: 65:59:d9:f7:a6:2c:e3:c9:ae:97:dd:d9:6e:e0:77: dc:97:f6:26:80:4b:5e:40:30:34:85:96:10:ed:7e: 2c:44:42:0d:3e:96:47:f1:9d:b4:7a:79:2a:fe:06: e0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:21:7C:DB:16:81:D1:7D:BA:A5:45:5F:A9:FD:88:F0:7F:71:2C:76 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:f9:78:55:c3:87:80:0f:a8:ff:3c:e2:2c:1c:96:b6:73:93: ce:97:1e:2c:98:b2:0c:70:3b:e3:af:80:8b:82:0d:b9:fb:17: 3c:85:46:e2:3e:ac:ab:dc:15:48:5d:36:20:bd:7a:d3:99:a3: 49:18:a6:6a:f6:12:97:da:d2:43:6b:08:9d:05:a0:09:82:fa: 46:f4:00:93:9b:cb:43:11:3e:60:69:9e:0d:cd:c4:d8:75:66: 5e:00:b7:8d:63:b8:2e:dc:46:42:46:13:59:ae:30:38:13:61: 02:4d:5b:fa:37:02:b7:67:b3:5b:c7:26:3b:12:88:d5:01:ff: 4f:1e:40:dc:0b:55:f4:bd:49:bf:26:ab:cb:5b:8f:6f:ca:9b: c8:04:13:fc:78:e7:70:fb:1b:9e:17:02:da:9f:24:fb:0e:64: 81:a0:cd:00:b3:86:f9:f4:40:c3:9f:d5:92:21:8c:d9:fa:39: 7a:d4:15:6a:fd:84:2f:ce:a2:20:fe:c3:15:94:f4:0b:5f:21: ee:ac:8e:d4:f2:35:e8:21:6a:09:ec:52:be:ab:09:bd:f3:02: a2:e5:5f:98:8c:42:de:4c:00:17:66:03:f6:f0:2b:55:95:9e: df:4d:35:03:a9:c7:ca:cd:c5:ac:f6:bc:0f:53:47:8a:65:54: 22:10:b8:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwODA4MTUzNjIwWhcNMjUwODE1MTUzNjIwWjAYMRYwFAYD VQQDEw02ODk2MTk3NC02MGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8hrX3OJ2mNuQyEn33mIiurscifjGCzSewsyf9E1Di0f8HsCFEPJZyKVV4Yy HNDja07Wlz+mxrjRQQcitSf50CJYm+Trpf1oYQ+XzslcHHLQc7DVDFhn4k6TcF3i s9K87necyLXw0u7oNLLtfS5igPWlbXaIFMSmSwI2sQM0t42MvVfO2D8h/aHa5DAH XzjzPIdKxX/m24+xoK2xDYtEdgtEMKACUTY/NXHZG5HtuLMX3DzTAcIuZ41TcrwR UJtJF26+O1QVEkhTLba6BcX+mXFlWdn3pizjya6X3dlu4Hfcl/YmgEteQDA0hZYQ 7X4sREINPpZH8Z20enkq/gbgjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDghfNsW gdF9uqVFX6n9iPB/cSx2MB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp+XhVw4eAD6j/POIsHJa2c5POlx4smLIMcDvjr4CLgg25+xc8hUbi Pqyr3BVIXTYgvXrTmaNJGKZq9hKX2tJDawidBaAJgvpG9ACTm8tDET5gaZ4NzcTY dWZeALeNY7gu3EZCRhNZrjA4E2ECTVv6NwK3Z7NbxyY7EojVAf9PHkDcC1X0vUm/ JqvLW49vypvIBBP8eOdw+xueFwLanyT7DmSBoM0As4b59EDDn9WSIYzZ+jl61BVq /YQvzqIg/sMVlPQLXyHurI7U8jXoIWoJ7FK+qwm98wKi5V+YjELeTAAXZgP28CtV lZ7fTTUDqcfKzcWs9rwPU0eKZVQiELj0 -----END CERTIFICATE-----Generated at Sun Aug 10 13:58:59 2025 by rpki-client